The official site for Saudi CERT
SUSE Updates
2563
Warning Date
Severity Level
Warning Number
Target Sector
8 July, 2020
● Medium
2020-1463
All
Description:
SUSE has released a security updates to address multiple vulnerabilities in the following products:
- LibVNCServer
- SUSE Linux Enterprise Workstation Extension 15-SP2
- SUSE Linux Enterprise Workstation Extension 15-SP1
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- librsvg
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- php7
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- gstreamer-plugins-base
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- perl
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- ffmpeg
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- gd
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- java-11-openjdk
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- SDL2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- djvulibre
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- Mesa
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- nasm
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Module for Development Tools 15-SP2
- SUSE Linux Enterprise Module for Development Tools 15-SP1
- permissions
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- SUSE Linux Enterprise Server 12-SP4
- openldap2
- SUSE OpenStack Cloud Crowbar 8
- SUSE OpenStack Cloud 8
- SUSE OpenStack Cloud 7
- SUSE Linux Enterprise Server 11-SP4-LTSS
- SUSE Linux Enterprise Server 11-SECURITY
- SUSE Linux Enterprise Point of Sale 11-SP3
- SUSE Linux Enterprise Debuginfo 11-SP4
- SUSE Linux Enterprise Debuginfo 11-SP3
- SUSE Linux Enterprise Software Development Kit 12-SP5
- SUSE Linux Enterprise Software Development Kit 12-SP4
- SUSE Linux Enterprise Server for SAP 12-SP3
- SUSE Linux Enterprise Server for SAP 12-SP2
- SUSE Linux Enterprise Server 12-SP5
- SUSE Linux Enterprise Server 12-SP4
- SUSE Linux Enterprise Server 12-SP3-LTSS
- SUSE Linux Enterprise Server 12-SP3-BCL
- SUSE Linux Enterprise Server 12-SP2-LTSS
- SUSE Linux Enterprise Server 12-SP2-BCL
- SUSE Enterprise Storage 5
- HPE Helion Openstack 8
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Module for Legacy Software 15-SP2
- SUSE Linux Enterprise Module for Legacy Software 15-SP1
- SUSE Linux Enterprise Module for Development Tools 15-SP2
- SUSE Linux Enterprise Module for Development Tools 15-SP1
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- mozilla-nspr
- SUSE Linux Enterprise Server 11-SP4-LTSS
- mozilla-nss
- SUSE Linux Enterprise Server 11-SP4-LTSS
- SUSE Linux Enterprise Server for SAP 15
- SUSE Linux Enterprise Server 15-LTSS
- SUSE Linux Enterprise Module for Server Applications 15-SP2
- SUSE Linux Enterprise Module for Server Applications 15-SP1
- SUSE Linux Enterprise Module for Basesystem 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP1
- SUSE Linux Enterprise High Performance Computing 15-LTSS
- SUSE Linux Enterprise High Performance Computing 15-ESPOS
- libjpeg-turbo
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP2
- SUSE Linux Enterprise Module for Packagehub Subpackages 15-SP1
- SUSE Linux Enterprise Module for Desktop Applications 15-SP2
- SUSE Linux Enterprise Module for Basesystem 15-SP2
Threats:
Attacker could exploit these vulnerabilities by doing the following:
- Memory corruption.
- Denial of service (DoS)
- Information disclosure
- Privilege escalation
- Buffer overflow
Best practice and Recommendations:
The CERT team encourages users to review SUSE security advisory and apply the necessary updates:
- https://www.suse.com/support/update/announcement/2020/suse-su-20201873-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20200629-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201661-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201300-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201682-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201164-2/
- https://www.suse.com/support/update/announcement/2019/suse-su-20193184-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20200594-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201511-2/
- https://www.suse.com/support/update/announcement/2019/suse-su-20192463-2/
- https://www.suse.com/support/update/announcement/2019/suse-su-20193033-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20200111-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20200111-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201864-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201860-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201859-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201858-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201857-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201856-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201855-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-202014419-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-202014418-1/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201850-1/
- https://www.suse.com/support/update/announcement/2019/suse-su-20192971-2/
- https://www.suse.com/support/update/announcement/2020/suse-su-20201843-1/
Rate the content
Share the page
